Vulnerabilities > Uncontrolled Resource Consumption ('Resource Exhaustion')
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-29 | CVE-2023-5196 | Resource Exhaustion vulnerability in Mattermost Mattermost fails to enforce character limits in all possible notification props allowing an attacker to send a really long value for a notification_prop resulting in the server consuming an abnormal quantity of computing resources and possibly becoming temporarily unavailable for its users. | 6.5 |
| 2023-09-27 | CVE-2023-20176 | Resource Exhaustion vulnerability in Cisco products A vulnerability in the networking component of Cisco access point (AP) software could allow an unauthenticated, remote attacker to cause a temporary disruption of service. This vulnerability is due to overuse of AP resources. | 8.6 |
| 2023-09-27 | CVE-2023-20268 | Resource Exhaustion vulnerability in Cisco products A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. | 4.7 |
| 2023-09-27 | CVE-2023-40441 | Resource Exhaustion vulnerability in Apple Macos A resource exhaustion issue was addressed with improved input validation. | 6.5 |
| 2023-09-27 | CVE-2023-41310 | Resource Exhaustion vulnerability in Huawei Emui and Harmonyos Keep-alive vulnerability in the sticky broadcast mechanism. | 3.3 |
| 2023-09-22 | CVE-2023-43771 | Resource Exhaustion vulnerability in Mikebrady NOT Quite PTP 1.2/1.2.1/1.2.2 In nqptp-message-handlers.c in nqptp before 1.2.3, crafted packets received on the control port could crash the program. | 5.5 |
| 2023-09-20 | CVE-2023-26144 | Resource Exhaustion vulnerability in Graphql Versions of the package graphql from 16.3.0 and before 16.8.1 are vulnerable to Denial of Service (DoS) due to insufficient checks in the OverlappingFieldsCanBeMergedRule.ts file when parsing large queries. | 5.3 |
| 2023-09-19 | CVE-2022-47556 | Resource Exhaustion vulnerability in Ormazabal Ekorccp Firmware and Ekorrci Firmware Uncontrolled resource consumption in ekorRCI, allowing an attacker with low-privileged access to the web server to send continuous legitimate web requests to a functionality that is not properly validated, in order to cause a denial of service (DoS) on the device. | 6.5 |
| 2023-09-18 | CVE-2023-42521 | Resource Exhaustion vulnerability in Withsecure products Certain WithSecure products allow a remote crash of a scanning engine via processing of a compressed file. | 7.5 |
| 2023-09-18 | CVE-2023-42522 | Resource Exhaustion vulnerability in Withsecure products Certain WithSecure products allow a remote crash of a scanning engine via processing of an import struct in a PE file. | 7.5 |